Hello guys Phishing is a cyber crime. Phishing is the process of stealing sensitive information, such as usernames, passwords, and bank information, by pretending to be someone you’re not. An example of this would be if you receive and e-mail from a hacker pretending to be your bank. In this e-mail, it might tell you that you need to update your account before it expires, and then the hacker provides a link. Once you click on the link, you arrive at a website that looks exactly like your actual bank page. In reality it’s just a perfect replica, and when you input your login details, it sends it to the hackers email or stores it on his web server.
Hackers that create the best, most deceiving phishing web pages are knowledgeable in the area of HTML and the PHP programming. Below I will show a simple example of some of the steps a hacker might take to create a phishing website. By seeing the steps a hacker would take, will help you defend against such an attack.
Steps to do:
First the hacker chooses a target. The most popular targets for phishing attacks are e-mail services such as Yahoomail and Gmail coz of they are the most common and once a hacker gets access to your e-mail, he also gets access to a load of other user information for all the other websites you use. In this example we will pretend the hacker chose Gmail as his target.
After choosing his target, the hacker will go to the website and save the whole main page. I use Mozilla Firefox ,(highly recommend using this browser for its security and customization.) So I would go to www.gmail.com and click File -> Save page as… , or simply hit <CTR> + S
which does this automatically. Choose where you would like to save the web page and hit Save. Once you have it saved, rename ServiceLogin.htm to index.htm. The reason you want to name it “index” is so when you upload it to a web host and someone goes to your link, the index page is the first page that shows up. Next the hacker would create a PHP script to do his dirty deed of steeling your information. Below is a simple PHP script that logs and stores your login details when you click “Sign in”. To see how it works, copy and paste the following code into notepad. Next save it into the same directory as you saved the Gmail page, and name it phish.php. In addition to the phish.php page, create a new empty text file and name it list.txt.
I will not give you the php script.. Save and close the file.
Next the hacker would upload the files up to a free webhost that supports PHP. you can read How to get free webhosting. popular free web hosting are freehost.com.
Once all the files are uploaded, you must give writing permissions to the “list.txt” file. Every hosting company should have a CHMOD option next to each file. Select this option and change the file permission for “list.txt” to 777. If you can’t figure out how to do this, ask people that use the same host or simply Google something similar to: “freewebhostname chmod”.
Once everything is up and ready to go, go to the link your host provided you for your website and you should see the Gmail page replica. This link may be very long and looking good so you can short this link using goo.gl or something else.
Type in a username/password and click Sign in. This should have redirected you to the real Gmail page.
Now go take a look at your list.txt file by going through your hosting file manager or going to http://www.freewebhosturl.com/youraccount/list.txt. Although this is the most common, the web host you use may provide a different looking URL.
If you put a username and password,then hacker has now your password and username.
So be careful always.
Hackers that create the best, most deceiving phishing web pages are knowledgeable in the area of HTML and the PHP programming. Below I will show a simple example of some of the steps a hacker might take to create a phishing website. By seeing the steps a hacker would take, will help you defend against such an attack.
Steps to do:
First the hacker chooses a target. The most popular targets for phishing attacks are e-mail services such as Yahoomail and Gmail coz of they are the most common and once a hacker gets access to your e-mail, he also gets access to a load of other user information for all the other websites you use. In this example we will pretend the hacker chose Gmail as his target.
After choosing his target, the hacker will go to the website and save the whole main page. I use Mozilla Firefox ,(highly recommend using this browser for its security and customization.) So I would go to www.gmail.com and click File -> Save page as… , or simply hit <CTR> + S
which does this automatically. Choose where you would like to save the web page and hit Save. Once you have it saved, rename ServiceLogin.htm to index.htm. The reason you want to name it “index” is so when you upload it to a web host and someone goes to your link, the index page is the first page that shows up. Next the hacker would create a PHP script to do his dirty deed of steeling your information. Below is a simple PHP script that logs and stores your login details when you click “Sign in”. To see how it works, copy and paste the following code into notepad. Next save it into the same directory as you saved the Gmail page, and name it phish.php. In addition to the phish.php page, create a new empty text file and name it list.txt.
I will not give you the php script.. Save and close the file.
Next the hacker would upload the files up to a free webhost that supports PHP. you can read How to get free webhosting. popular free web hosting are freehost.com.
Once all the files are uploaded, you must give writing permissions to the “list.txt” file. Every hosting company should have a CHMOD option next to each file. Select this option and change the file permission for “list.txt” to 777. If you can’t figure out how to do this, ask people that use the same host or simply Google something similar to: “freewebhostname chmod”.
Once everything is up and ready to go, go to the link your host provided you for your website and you should see the Gmail page replica. This link may be very long and looking good so you can short this link using goo.gl or something else.
Type in a username/password and click Sign in. This should have redirected you to the real Gmail page.
Now go take a look at your list.txt file by going through your hosting file manager or going to http://www.freewebhosturl.com/youraccount/list.txt. Although this is the most common, the web host you use may provide a different looking URL.
If you put a username and password,then hacker has now your password and username.
So be careful always.
No comments:
Post a Comment